MGASA-2014-0123 Updated file packages fix CVE-2014-2270

Updated file packages fix security vulnerability: A flaw was found in the way the file utility determined the type of Portable Executable PE format files, the executable format used on Windows. A malicious PE file could cause the file utility to crash or, potentially, execute arbitrary code...

PHP 5.4.x < 5.4.26 Multiple Vulnerabilities

According to its banner, the version of PHP 5.4.x installed on the remote host is a version prior to 5.4.26. It is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the Fileinfo extension and the bundled libmagic library that could allow denial of...

CVE-2014-1253

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service kernel memory corruption or possibly have unspecified other impact via a malformed header in a Portable Executable PE file...

Memory corruption

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service kernel memory corruption or possibly have unspecified other impact via a malformed header in a Portable Executable PE file...

CVE-2014-1253

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service kernel memory corruption or possibly have unspecified other impact via a malformed header in a Portable Executable PE file...

MS13-098: Vulnerability in Windows Could Allow Remote Code Execution (2893294)

The remote host contains a version of Microsoft Windows that is affected by a remote code execution vulnerability. The vulnerability exists in the method in which the WinVerifyTrust function deals with Windows Authenticode signature verification for portable executable files. An attacker could...

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the forma...

Comodo Internet Security Denial of Service Vulnerability July 13

The host is installed with Comodo Internet Security and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbcomododosvulnjuly13win.nasl 6125 2017-05-15 09:03:42Z teissa $ Comodo Internet Security Denial of Service Vulnerability July 13 Authors: Arun Kallavi Copyright:...

Comodo Internet Security Denial of Service Vulnerability (Jul 2013)

Comodo Internet Security is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-6553

Heap-based buffer overflow in Resource Hacker 3.6.0.92 allows remote attackers to execute arbitrary code via a Portable Executable PE file with a resource section containing a string that has many tab or line feed characters...

CVE-2012-6558

Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows remote attackers to execute arbitrary code via the size value for a string in the resource section of a Portable Executable PE file...

Heap overflow

Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows remote attackers to execute arbitrary code via the size value for a string in the resource section of a Portable Executable PE file...

CVE-2012-6558

Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows remote attackers to execute arbitrary code via the size value for a string in the resource section of a Portable Executable PE file...

CVE-2012-6558

HeavenTools PE Explorer 1.99 R6 is affected by a heap-based buffer overflow in the resource section of a Portable Executable, triggered by the size value for a string. This allows remote code execution. Documents in NVD/NVD mirrors confirm the issue but do not provide explicit exploit details or ...

Code injection

Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service system crash via a crafted 32-bit Portable Executable PE file with a kernel ImageBase value...

CVE-2012-2273

Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service system crash via a crafted 32-bit Portable Executable PE file with a kernel ImageBase value...

Windows Authenticode Signature Remote Code Execution Vulnerability (2653956)

This host is missing a critical security update according to Microsoft Bulletin MS12-024. OpenVAS Vulnerability Test $Id: secpodms12-024.nasl 5346 2017-02-19 08:43:11Z cfi $ Windows Authenticode Signature Remote Code Execution Vulnerability 2653956 Authors: Rachana Shetty Copyright: Copyright c...

CVE-2012-0151

The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable P...

PT-2012-1231 · Microsoft · Windows Xp +6

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview Description: The Authenticode Signature Verification functi...

Microsoft Windows Authenticode Signature Verification Function Remote Code Execution Vulnerability

Description Microsoft Windows Authenticode Signature Verification is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting victim to run or install a specially modified signed Portable Executable PE file. Successful exploits can allow attacke...